Phishing Campaigns Abuse Cloud Platforms to Target Latin America

Jul 23, 2024 1:55:11 PM By Stu Sjouwerman

Several threat actors are abusing legitimate cloud services to launch phishing attacks against users in Latin America, according to Google’s latest Threat Horizons Report.

Is Your Bank Really Calling? How to Protect Yourself from Financial Impersonation Fraud

Jul 23, 2024 1:55:08 PM By Anna Collard

Protecting your financial information has never been more crucial. With the rise of sophisticated scams, it's becoming increasingly difficult to distinguish between legitimate bank ...

Crypto Data Breach Continues to Fuel Phishing Scams Years Later

Jul 23, 2024 1:55:04 PM By Stu Sjouwerman

According to security researchers at Cisco Talos, emails impersonating legitimate officers at the Cyprus Securities and Exchange Commission are being sent to prior Opteck customers that ...

How a North Korean Fake IT Worker Tried to Infiltrate Us

Jul 23, 2024 10:14:55 AM By Stu Sjouwerman

Incident Report Summary: Insider Threat First of all: No illegal access was gained, and no data was lost, compromised, or exfiltrated on any KnowBe4 systems. This is not a data breach ...

CyberheistNews Vol 14 #30 The SEC Fines a Public Company 2 Million+ For Ransomware Negligence

Jul 23, 2024 9:00:00 AM By Stu Sjouwerman

Phishing Attacks Will Likely Follow Last Week’s Global IT Outage

Jul 22, 2024 2:36:16 PM By Stu Sjouwerman

Organizations should expect to see phishing attacks exploiting the global IT outage that occurred last Friday, the Business Post reports.

[Security Masterminds Podcast] Securing Software Over 50 Years: Reflections from an Industry Veteran

Jul 22, 2024 2:36:12 PM By James McQuiggan

Does the challenge of keeping up with cybersecurity trends sound familiar? You may have been told to update your antivirus software and hope for the best, only to find that your digital ...

CrowdStrike Phishing Attacks Appear in Record Time

Jul 19, 2024 3:59:42 PM By Stu Sjouwerman

I have been the CEO of an anti-virus software developer. We had a special acronym for catastrophic events like this, a so-called "CEE". As in Company Extinction Event. But first: Our ...

78% of Organizations Are Targets of Ransomware Attacks Two or More Times in Twelve Months

Jul 19, 2024 1:53:14 PM By Stu Sjouwerman

New data puts the spotlight on the frequency and impact of modern ransomware attacks, highlighting the overconfidence organizations are showing in their ability to defend and respond to ...

CISA’s Red Team Exercise Shows Value of Phishing, but Misses the Best Recommendation

Jul 19, 2024 1:52:49 PM By Roger Grimes

Phishing is used to completely compromise the victim’s environment after other repeated methods failed.

Cyber Threats Targeting the 2024 Paris Olympics

Jul 18, 2024 1:41:32 PM By Stu Sjouwerman

Our friends at the CyberWire reported: "ZeroFox and Fortinet have both published reports on threats facing the 2024 Olympics in Paris. ZeroFox says the primary cybersecurity threat will ...

Change Healthcare Ransomware Attack May Cost Nearly $2.5 Billion

Jul 18, 2024 11:30:10 AM By Stu Sjouwerman

The ransomware attack against UnitedHealth Group’s Change Healthcare platform is expected to cost the company up to $2.45 billion, more than a billion dollars more than was previously ...

Chile Leads Latin America With New Cybersecurity Governance

Jul 18, 2024 11:30:06 AM By Roger Grimes

Chile took a major step toward a more resilient cyber landscape for its citizens and the Latin American region on Tuesday, March 26, 2024, when Chile’s president of the Republic, Gabriel ...

7 in 10 Organizations Experienced a Business Email Compromise Attack in the Last 12 Months

Jul 18, 2024 11:30:02 AM By Stu Sjouwerman

Despite ransomware getting the lion’s share of the tech pub headlines, business email compromise (BEC) attacks are alive and well… and having a material impact.

New Ransomware Threat Group Calls Attack Victims to Ensure Payments

Jul 17, 2024 1:50:47 PM By Stu Sjouwerman

Analysis of new ransomware group Volcano Demon provides a detailed look into how and why calling victims ups the chances of ransomware payment.

Malvertising Campaign Impersonates Microsoft Teams

Jul 17, 2024 1:50:43 PM By Stu Sjouwerman

Researchers at Malwarebytes warn that a malvertising campaign is targeting Mac users with phony Microsoft Teams ads. The ads are meant to trick users into installing Atomic Stealer, a ...

[NEW FREE TOOL]: Reveal Your Network's Hidden Weaknesses with KnowBe4's BreachSim Data Exfiltration Simulator

Jul 17, 2024 8:00:00 AM By Stu Sjouwerman

As cyber threats evolve, the target has become crystal clear: your data. A staggering 90% of ransomware attacks now include a data exfiltration component. With this in mind, KnowBe4 has ...

SEC Fines Publicly Traded Company $2.125 Million For Negligence Before, During, and After a Ransomware Attack

Jul 16, 2024 12:26:30 PM By Stu Sjouwerman

According to the filing, the organization in question failed to devise controls to adequately detect, respond to, and disclose an attack that included data exfiltration and service ...

Espionage-Intent Threat Groups Are Now Using Ransomware as a Diversion Tactic in Cyberattacks

Jul 16, 2024 11:40:00 AM By Stu Sjouwerman

A new report focused on cyber espionage actors targeting government and critical infrastructure sectors highlights the strategic use of ransomware for distraction or misattribution.

IRS Warns of Phishing Attacks Targeting Car Dealerships

Jul 16, 2024 11:37:55 AM By Stu Sjouwerman

The US Internal Revenue Service (IRS) has issued an advisory warning of phishing campaigns targeting car dealerships. The IRS says car dealers should be on the lookout for targeted ...

Security Awareness Training Blog

View Topics